Tech & Society

No love lost: Zomato business unaffected by May data breach

India born Zomato announced they reached three million orders in a single month, still going strong months after suffering from a massive data leak in May.

Though a restaurant platform designed to consolidate restaurant reviews and facilitate online ordering didn’t sound like a prime target for a hack, they confirmed the breach on their blog on May 18. Zomato’s customer databases were hacked and the perpetrator accessed emails, names and hashed passwords for 17 million accounts. Though luckily payment information was not compromised.

Reportedly, the company was able to negotiate with the unnamed hacker to prevent misuse of the information, which was going to be sold on a dark web marketplace. The hacker was said to embrace ethical hacking standards and accepted to take down and destroy the data in exchange for Zomato’s sponsorship of a bug bounty program on Hackerone.

The breach involved at least 6.6 million email and password hash combinations. Password hashes are vulnerable to brute-force attacks that can potentially reveal the passwords. When considering that people tend to use the same password across many online services, data breaches can be devastating for affected users.

While Zomato has taken steps to fix the vulnerability that enabled the hacker to access their system, the problem has deeper roots. “Password-secured security solutions have quickly become outdated, leaving millions of businesses vulnerable to breaches”, said Leonardo Cooper, CEO of cyber security company Vault One. As new no-password technologies such as blockchain become the standard, security is expected to increase in both business and private environments.

Nonetheless, Zomato continues to attract attention in the ultra competitive foodtech sector. Since last year it has made great improvement toward profitability as it is getting more visitors and orders, decreasing cash burning, and surviving many other startups—all while staying away from new funding.

Back in May 2016, HSBC Securities & Capital Markets cut Zomato’s valuation by 50% in light of non-profitable operations in all 23 countries it operates in; today, Zomato makes a profit in 11 of them.

Even the most loved startups face setbacks they must overcome, and Zomato is no exception. While the shadow of a data leak remains a dark spot on their history, their sustained deliveries and will to survive show that users will forgive your sins—as long as you have a great product.

 

Daniel Sanchez

Hailing from the Caribbean coast of Colombia, Daniel is a writer and freelance translator with a background in biology. When not word-smithing, you will probably find him chasing frogs somewhere around the tropical belt.

Recent Posts

Indian gaming shifts from audience to creator “given India’s mobile-first gaming capabilities”

The Indian gaming industry is sitting on an industry explosion in the near future as…

9 hours ago

Transforming modern business operations: How Microsoft 365’s AI Integration is automating HR workflows & enhancing employee experiences

In today's fast-paced business world, when employee fulfillment and efficiency are crucial, technology has become…

11 hours ago

Outbound & inbound: India attracts businesses from UK, China & US while expanding to Middle East

The Tech Panda takes a look at how India has been attracting foreign businesses from…

1 day ago

UPI value & volume surpass records in March

India’s digital payments ecosystem achieved a record high in March, with UPI transactions reaching INR24.77…

1 day ago

AI-powered digital twins, Cobots, agentic AI, physical AI & edge computing are enabling an anticipatory AI-first manufacturing ecosystem

Tata Consultancy Services (TCS) (BSE: 532540, NSE: TCS), ), a leader in IT services, consulting, and business…

1 day ago

Misinformation & deepfakes help weaponize AI: Should AI be as open as the internet then?

The ability for AI to spread misinformation has been reaching hair-raising lengths, another and possibly…

3 days ago